Unrated severityNVD Advisory· Published Oct 9, 2011· Updated Apr 29, 2026

CVE-2010-4949

Description

Cross-site scripting (XSS) vulnerability in the (1) FreiChat component before 2.1.2 for Joomla! and the (2) FreiChatPure component before 1.2.2 for Joomla! allows remote attackers to inject arbitrary web script or HTML by entering it in an unspecified window.

Affected products

Evnix/Freichat4 versions
cpe:2.3:a:evnix:freichat:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:evnix:freichat:*:*:*:*:*:*:*:*range: <=2.1.1
- cpe:2.3:a:evnix:freichat:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:evnix:freichat:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:evnix:freichat:2.1:*:*:*:*:*:*:*
Evnix/Freichatpure3 versions
cpe:2.3:a:evnix:freichatpure:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:evnix:freichatpure:*:*:*:*:*:*:*:*range: <=1.2.1
- cpe:2.3:a:evnix:freichatpure:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:evnix:freichatpure:1.2:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

forum.joomla.org/viewtopic.phpnvdExploit
www.securityfocus.com/bid/41961nvdExploit
secunia.com/advisories/40751nvdVendor Advisory
www.osvdb.org/66628nvd
exchange.xforce.ibmcloud.com/vulnerabilities/60828nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000